Privacy

32796 readers

1604 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
Don't promote proprietary software
Try to keep things on topic
If you have a question, please try searching for previous discussions, maybe it has already been answered
Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
Be nice :)

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago

MODERATORS

[email protected]

kinda specific threat model, would like advice (beehaw.org)

submitted 1 week ago by [email protected] to c/[email protected]

6 comments fedilink hide all child comments

So, you know commercial spyware? No I'm not referring to ads or things like pegasus. Talking about those weird providers that market to schools, employers and shitty partners

What measures could be taken to mitigate these threats? When physical can be assumes but the attacker isn't skilled, just using one of said tools? How would this vary between phones and laptops for example?

Thoughts?

No I'm not in danger, just get curious about this subject once in a while

you are viewing a single comment's thread
view the rest of the comments

[–] [email protected] 3 points 1 week ago

As someone who deals with Windows software and mobile apps of dubious provenance at a BYOD workplace:

Get a separate device with sufficient horsepower to handle whatever work, school, etc. throws at it. Used ThinkPads and unlocked Google Pixels are a good bet.
Pick a small and light laptop if you also need to have your primary one on hand. Preferably, both can use the same USB-C charger.
Use that device for work-related things and nothing else. Assume it is compromised.
Connect to a separate access point if you need to use it at home.

If a phone or tablet (preferably with GrapheneOS) will suffice, go for it:

Recent Android and iOS versions have much stronger sandboxing than PCs and laptops in general. Spyware can still do a lot on mobile devices, but not nearly as comprehensively as on PCs and laptops.
i.e. Commercial spyware can easily plant rootkits and kernel-level trackers on a laptop, but this would be much harder on an up-to-date mobile device.
For Android devices that support it, limit work and MDM apps to a secondary profile and close that profile when not actively using the phone.
Turn off cellular, wifi, bluetooth, and location when not actively in use.

If the offender is your partner, practice good digital hygiene, never let them touch your devices, and good luck.